Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add ability to inject secrets in the pods #163

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

add ability to inject secrets in the pods #163

wants to merge 1 commit into from
+22 −6

Conversation

imdhruva
Copy link

@imdhruva imdhruva commented Aug 9, 2023
edited

This issues is attempt to enable injecting of secrets via vault or other such tools. The issue is described here: #160.
With this change we can

  • call consul-template -exec "/opt/netbox/venv/bin/python /opt/netbox/netbox/manage.py rqworker at the entrypoint so vault can managed injection of the extra secrets.
  • vault will read the secrets from vault store and mount them in yaml format at /run/config/extra/vault/secrets.yaml
  • configuration.py will read secrets from /run/config/extra/vault/secrets.yaml and override the previously read the secets

Let me know if this makes sense.

@imdhruva imdhruva changed the title Develop Enable injecting secrets Aug 9, 2023
@imdhruva imdhruva changed the title Enable injecting secrets add ability to inject secrets in the pods Aug 9, 2023
@imdhruva imdhruva marked this pull request as ready for review August 9, 2023 06:07
bootc
bootc requested changes Oct 31, 2023
View reviewed changes
templates/configmap.yaml
Comment on lines +68 to +69
_load_yaml()

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why is this needed?

README.md
Comment on lines +371 to +372
| `housekeeping.args`. | Custom start up arguments for netbox container arguments. | `[]` |
| `housekeeping.command` | Custom container entrypoint. | ["/opt/netbox/venv/bin/python","/opt/netbox/netbox/manage.py",rqworker] |
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nitpick: can you please swap these two lines? Logically I feel like that makes more sense as the args are appended to the command when both are present.

values.yaml
Comment on lines +699 to +700
args: []
command:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same as the above, could we swap these around please?

values.yaml
Comment on lines +783 to +784
args: []
command:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same as the above, could we swap these around please?

@bootc bootc added enhancement New feature or request more info More information required from the reporter labels Oct 31, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bootc bootc bootc requested changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
enhancement New feature or request more info More information required from the reporter
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@imdhruva @bootc